Skip to main content

🛡️ Wallet Security

We DO NOT have access to your private keys or mnemonic!

Our wallet system is built with robust security measures to protect your assets and personal information. Below is an overview of how we safeguard your wallet:

1. Data Encryption

  • AES-256-GCM Encryption:
    All wallet data is encrypted using the AES-256-GCM algorithm, a state-of-the-art encryption standard. AES-256-GCM not only encrypts your data but also provides an authentication tag, which verifies that your data hasn’t been tampered with. This seamlessly ensures that all your data is consistently protected with the most secure method available.

2. Passphrase Protection

  • Secure Hashing with Scrypt:
    Your wallet passphrase is never stored in plain text. Instead, we use the scrypt key derivation function combined with a unique, randomly generated salt. This process produces a secure hash, making it extremely difficult (almost impossible) for attackers to reverse-engineer your original passphrase.
  • Protection Against Common Attacks:
    The use of scrypt, along with cryptographically secure salts and timing-safe comparisons, defends against brute-force, rainbow table, and side-channel attacks.

3. Key Management and Integrity

  • Secure Key Derivation:
    Encryption keys are derived using secure cryptographic methods (SHA-256) to ensure that they are both unique and unpredictable.
  • Unique Initialization Vectors (IVs):
    Each encryption operation uses a unique IV (a 12-byte IV for AES-256-GCM). This practice prevents the reuse of encryption keys in different contexts and ensures that even repeated encryptions of the same data yield different ciphertexts.
  • Built-In Integrity Checks:
    The authentication tag produced by AES-256-GCM ensures that any unauthorized modification of the encrypted data is immediately detected during decryption.

4. Continuous Security Improvements

  • Regular Updates:
    We continuously monitor and update our security protocols to protect against emerging threats. Our system is designed to evolve with the latest cryptographic advancements.
  • User Best Practices:
    In addition to our technical safeguards, we encourage users to protect their wallet by using strong, unique passwords and keeping them confidential.

This comprehensive security setup ensures that your wallet remains safe from unauthorized access and tampering, giving you confidence in the integrity and privacy of your XRP MAXI WALLET.